GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
Filter advisories
Filter advisories
GitHub reviewed advisories
All reviewed
5,000+
Composer
4,466
Erlang
33
GitHub Actions
23
Go
2,166
Maven
5,000+
npm
3,829
NuGet
696
pip
3,507
Pub
12
RubyGems
909
Rust
904
Swift
38
Unreviewed advisories
All unreviewed
5,000+
6,569 advisories
Filter by severity
HCL AppScan Traffic Recorder fails to adequately neutralize special characters within the...
Moderate
Unreviewed
CVE-2024-30143
was published
Mar 13, 2025
A Path Traversal Information Disclosure vulnerability exists in "Sante PACS Server.exe". An...
High
Unreviewed
CVE-2025-2264
was published
Mar 13, 2025
The Download Manager plugin for WordPress is vulnerable to Directory Traversal in all versions up...
Moderate
Unreviewed
CVE-2025-1785
was published
Mar 13, 2025
A vulnerability classified as critical was found in Doufox up to 0.2.0. Affected by this...
Moderate
Unreviewed
CVE-2025-2215
was published
Mar 12, 2025
Mockoon has a Path Traversal and LFI in the static file serving endpoint
High
GHSA-w7f9-wqc4-3wxr
was published
for
@mockoon/cli
(npm)
Mar 11, 2025
A improper limitation of a pathname to a restricted directory ('path traversal') in Fortinet...
Moderate
Unreviewed
CVE-2024-55597
was published
Mar 11, 2025
A vulnerability has been found in MRCMS 3.1.2 and classified as critical. This vulnerability...
Moderate
Unreviewed
CVE-2025-2193
was published
Mar 11, 2025
A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions < V4.0...
High
Unreviewed
CVE-2025-27395
was published
Mar 11, 2025
A vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions < V4.0...
Moderate
Unreviewed
CVE-2025-27397
was published
Mar 11, 2025
The HUSKY – Products Filter Professional for WooCommerce plugin for WordPress is vulnerable to...
Critical
Unreviewed
CVE-2025-1661
was published
Mar 11, 2025
The WP-Recall – Registration, Profile, Commerce & More plugin for WordPress is vulnerable to...
Moderate
Unreviewed
CVE-2025-1322
was published
Mar 8, 2025
The Ultimate Video Player WordPress & WooCommerce Plugin plugin for WordPress is vulnerable to...
High
Unreviewed
CVE-2024-10804
was published
Mar 7, 2025
The CS Framework plugin for WordPress is vulnerable to arbitrary file deletion due to...
High
Unreviewed
CVE-2024-12035
was published
Mar 7, 2025
A vulnerability classified as problematic was found in ChestnutCMS 1.5.2. This vulnerability...
Moderate
Unreviewed
CVE-2025-2032
was published
Mar 6, 2025
Smartwares cameras CIP-37210AT and C724IP, as well as others which share the same firmware in...
Moderate
Unreviewed
CVE-2024-13894
was published
Mar 6, 2025
The Moving Media Library plugin for WordPress is vulnerable to arbitrary file deletion due to...
Moderate
Unreviewed
CVE-2024-13897
was published
Mar 6, 2025
Path traversal may lead to arbitrary file download. The score without
least privilege principle...
Moderate
Unreviewed
CVE-2025-21095
was published
Mar 5, 2025
Path traversal may lead to arbitrary file deletion. The score without
least privilege principle...
Moderate
Unreviewed
CVE-2025-23416
was published
Mar 5, 2025
Path traversal may allow remote code execution using privileged account
(requires device admin...
High
Unreviewed
CVE-2025-24494
was published
Mar 5, 2025
The DesignThemes Core Features plugin for WordPress is vulnerable to unauthorized access of data...
High
Unreviewed
CVE-2024-13471
was published
Mar 5, 2025
Improper Limitation of a Pathname to a Restricted Directory in DevTools in Google Chrome on...
High
Unreviewed
CVE-2025-1915
was published
Mar 5, 2025
A vulnerability regarding improper limitation of a pathname to a restricted directory ('Path...
Moderate
Unreviewed
CVE-2023-47803
was published
Mar 4, 2025
There is a path traversal vulnerability in ESRI ArcGIS Server versions 10.9.1 thru 11.3. ...
Moderate
Unreviewed
CVE-2024-51966
was published
Mar 3, 2025
There is a path traversal vulnerability in ESRI ArcGIS Server versions 10.9.1 thru 11.3. ...
Moderate
Unreviewed
CVE-2024-51958
was published
Mar 3, 2025
Path Traversal vulnerability in NotFound GPX Viewer allows Path Traversal. This issue affects GPX...
Moderate
Unreviewed
CVE-2025-27274
was published
Mar 3, 2025
ProTip!
Advisories are also available from the
GraphQL API